Focus on FedRAMP

JAB Prioritized CSPs and FedRAMP Connect Updates

By FedRAMP

March 26, 2020

The following Cloud Service Providers (CSPs) have been selected to work with the Joint Authorization Board (JAB) for a Provisional Authority to Operate (P-ATO) from our latest round of FedRAMP Connect:

Okta - Identity as a Service (IDaaS)

Splunk

Sumo Logic

These vendors were selected in accordance with our JAB Prioritization Guidance and Criteria document to work with the JAB on their security package reviews. We’re proud to see the scope and scale of innovation and infrastructure modernization that this next group of vendors represent for JAB authorizations. Congratulations!

The next due date for FedRAMP Connect Business Cases will be May 8, 2020 at 5:00pm ET. This is the process by which CSPs are prioritized to work with the JAB.

In preparation for this next round of FedRAMP Connect, the JAB Prioritization Guidance and Criteria document has been updated, based on our continued commitment to improving our process and documentation, to provide CSPs with additional information on how to successfully complete a Business Case.

Small updates have also been made to the process, including:

FedRAMP Connect Business Case due dates will be announced by the PMO a minimum of 30 days prior to a due date via the Focus on FedRAMP blog, FedRAMP’s listserv, and the JAB Authorization webpage

CSPs interested in pursuing a JAB P-ATO must submit a Business Case each round to ensure the information provided for the PMO’s review is up to date and accurate

Please keep in mind, the FedRAMP Program Management Office (PMO) and JAB have limited resources and can only work with a fixed number of cloud service providers per year for a JAB P-ATO. The JAB prioritizes cloud service offerings based on government-wide demand to help meet government-wide mission needs. Agencies and industry can also work together by partnering to achieve a FedRAMP Authorization. For more information, check out the Agency Authorization Playbook.